Alternatives and similar repositories for cnitch:

Users that are interested in cnitch are comparing it to the libraries listed below

• falcosecurity-retire / profiles
  Falco container runtime security extras (default rulesets and more)
  ☆49Updated 6 years ago
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆82Updated 5 years ago
• lukebond / microscanner-wrapper
  Bash wrapper script for Aquasec Microscanner
  ☆61Updated 5 years ago
• bgeesaman / kubeatf
  ☆55Updated 7 years ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated 2 weeks ago
• sethvargo / vault-auth-slack
  A @HashiCorp Vault plugin for authenticating and receiving policies via Slack.
  ☆50Updated 5 years ago
• nonstandardlogic / kubevscan
  Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.
  ☆23Updated 4 years ago
• vmware-archive / ironclad
  Web Application Firewall (WAF) on Kubernetes
  ☆68Updated 3 years ago
• vmware-archive / kubectl-rbac
  ☆33Updated 5 years ago
• docker-credential-magic / docker-credential-magic
  A magic shim for Docker credential helpers 🪄
  ☆69Updated 3 years ago
• antitree / krew-net-forward
  Variety of kubectl krew tools usually security focused
  ☆32Updated last year
• nrvnrvn / secreter
  ⛔️ DEPRECATED Kubernetes operator and CLI tool for encrypting and managing Kubernetes secrets
  ☆65Updated 8 months ago
• diogomonica / actuary
  An actuary is a business professional who analyzes the financial consequences of risk.
  ☆78Updated 7 years ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• uchi-mata / dostainer
  ☆29Updated 2 months ago
• freach / docker-image-policy-plugin
  Docker authentication plugin to enforce a image pull policy. Whitelist Docker images allowed to be pulled.
  ☆42Updated 7 years ago
• falcosecurity-retire / falco-operator
  Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors
  ☆68Updated 4 years ago
• falcosecurity-retire / falco-security-workshop
  Container Security Workshop covering using Falco on Kubernetes.
  ☆105Updated 3 years ago
• buildkite / sockguard
  A proxy for docker.sock that enforces access control and isolated privileges
  ☆143Updated 3 years ago
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆124Updated 2 years ago
• geerlingguy / k8s-pod-rbac-breakout
  Kubernetes Pod RBAC Breakout
  ☆37Updated last year
• bgeesaman / kube-env-stealer
  Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env
  ☆103Updated 5 years ago
• ianmiell / bad-dockerfile
  A Dockerfile that creates an image with known vulnerabilities.
  ☆49Updated 3 years ago
• imjasonh / rbac-audit
  Generate K8s RBAC policies based on e2e test runs
  ☆28Updated 3 years ago
• patoarvizu / vault-agent-auto-inject-webhook
  Server to be used as a Kubernetes mutating webhook to automatically inject a Vault agent sidecar or init container
  ☆16Updated last year
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated 3 months ago
• krisnova / bashernetes
  A Kubernetes implementation in bash (srsly)
  ☆17Updated 7 years ago
• controlplaneio / kubesec-webhook
  Security risk analysis for Kubernetes resources
  ☆74Updated 3 months ago
• andrewwebber / kate
  Because Clair needs a friend
  ☆31Updated 5 years ago
• wayfair-archive / terrafirma
  A static analysis tool for Terraform plans.
  ☆45Updated 2 years ago